EN TR

Privacy Policy

Last updated: 6 June 2026 · Effective immediately.

Beta / Early Access. autoMapVersus is an independently developed experimental project. This privacy policy describes how we handle your data. It may be updated as the project evolves.

1. Who we are

autoMapVersus (the "App", "we", "us") is a mobile game where players drive in the real world to capture territories by drawing routes automatically during trips. autoMapVersus is operated as an individually-run project. You can reach us at hi@ssilistre.dev.

2. What data we collect

We collect only the data needed to run the game.

2.1 Account data

Authentication identifier from Apple Sign In or Google OAuth
Email address (provided by the OAuth provider)
Display name and avatar chosen during onboarding
Language preference and analytics opt-in flag

2.2 Gameplay data

Drive records: start/end timestamps, distance traveled (km), GPS route polyline
Territories: polygon, area, perimeter, owner, creation date
Placed markers, fuel points, attack history
Team membership and team-attributed drives

2.3 Location data

While a drive is in progress we read your device's GPS coordinates to draw the route automatically. Location reading runs in the foreground and, if you grant the "Always" permission, also in the background while a drive is active. We stop reading location the moment the drive ends or is cancelled. Coordinates are stored as the route polyline of the drive.

Driving safety: The app is designed for fully automatic operation during drives. You must not interact with the phone while driving. Location data is processed to detect game events (territory capture, route validation) without requiring any driver interaction.

2.4 Purchases

Premium subscriptions are processed by Apple App Store or Google Play. We never see your card details. RevenueCat provides us with a subscription status and expiry date tied to your autoMapVersus user ID.

2.5 Analytics (opt-in)

If you enable "Send anonymous stats" in Profile, we send product analytics events (screen views, button taps, drive lifecycle, error events) to PostHog (EU region). The default is opt-in only — you can turn it off at any time in Profile and we will stop sending events immediately. We do not link analytics events to your real name or email; only to your autoMapVersus user ID.

3. Where your data is stored

Supabase (EU — Frankfurt): the primary database holding account, drives, territories, markers, teams.
PostHog (EU): product analytics events, opt-in only.
RevenueCat: subscription state and entitlements.
Your device: session tokens (secure storage), settings, cached game state.

4. Who we share your data with

We do not sell your data. We share it only with the processors above to operate the service. We do not share data with advertisers. We may disclose data if compelled by a valid legal request from a Turkish or EU authority.

5. How long we keep your data

Account data: until you delete your account.
Drives & territories: indefinitely while the account is active; up to 30 days after account deletion in encrypted backups.
Analytics: rolling 12 months in PostHog.
Support emails: up to 24 months.

6. Your rights

Under GDPR (EU) and KVKK (Türkiye) you have the right to:

Access the personal data we hold about you
Request correction of inaccurate data
Request deletion ("right to be forgotten")
Export your data in a machine-readable format (portability)
Withdraw consent (e.g. turn analytics off)
Lodge a complaint with your supervisory authority (KVKK in Türkiye, your national DPA in the EU)

To exercise these rights email hi@ssilistre.dev. We respond within 30 days.

7. Children

autoMapVersus is not directed to children under 13. We do not knowingly collect data from children under 13 (COPPA, US). Users between 13 and the digital age of consent in their country must have parental permission. If you believe a child has signed up, contact us and we will delete the account.

8. Cookies and tracking

The mobile app does not use browser cookies. Analytics events use a first-party PostHog distinct ID tied to your autoMapVersus user ID. There are no third-party advertising trackers or SDKs.

9. Security

Data in transit is encrypted with TLS. Data at rest is encrypted by Supabase. Session tokens live in iOS Keychain / Android Keystore via expo-secure-store. You can revoke a device by signing out.

10. Changes to this policy

We will notify in-app and update the "Last updated" date above when we change this policy materially.

11. Contact

Email: hi@ssilistre.dev